Brainscape's Knowledge GenomeTM

Browse over 1 million classes created by top students, professors, publishers, and experts.


See full index

CYBF 675 Quiz 2 > Homework > Flashcards

Homework Flashcards

1
Q

Windows Task Manager

A

Shows processes from all users

names, descriptions

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

Process Explorer

A

procexp.exe

  • shows processes for all users
  • shows parent processes
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

Indicators of malware

A
  • wrong parent process
  • bad path
  • renamed file
  • description doesn’t match name
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

malware perisistence

A

whenever system reboot, malware relaunches

“autoruns”

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

autoruns

A

processes and applications launched automatically when a system is rebooted.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

autoruns.exe

A
  • Sysinternals tool which shows autorun locations/values
  • registry and non-registry locations
  • allows for “Compare to Saved AutoRuns File…”
  • changes shown in “green”
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

autoruns.exe categories

A 
Logon
Explorer
Internet Explorer
Scheduled Tasks
Services
Drivers
Codecs
Boot Execute
Image Hijacks
AppInit
KnownDLLs
Winlogon
Winsock Providers
Print Monitors
LSA Providers
Network Providers
WMI
Sidebar Gadgets
How well did you know this?
1
Not at all
2
3
4
5
Perfectly

CYBF 675 Quiz 2 (3 decks)

Brainscape helps you reach your goals faster, through stronger study habits.
© 2024 Bold Learning Solutions. Terms and Conditions